Red Hat Bugzilla – Bug 720057
CVE-2009-5081 groff: roff2.pl and groffer.pl use easy-to-guess temporary file names
Last modified: 2014-11-20 15:02:25 EST
Common Vulnerabilities and Exposures assigned an identifier CVE-2009-5081 to
the following vulnerability:
The (1) config.guess, (2) contrib/groffer/perl/groffer.pl, and (3)
contrib/groffer/perl/roff2.pl scripts in GNU troff (aka groff) 1.21
and earlier use an insufficient number of X characters in the template
argument to the tempfile function, which makes it easier for local
users to overwrite arbitrary files via a symlink attack on a temporary
file, a different vulnerability than CVE-2004-0969.
Not vulnerable. This issue did not affect the versions of groff as shipped with
Red Hat Enterprise Linux 4, 5, or 6.
Created groff tracking bugs for this issue
Affects: fedora-all [bug 720060]
groff-1.21-4.fc15 has been pushed to the Fedora 15 stable repository. If problems still persist, please make note of it in this bug report.
groff-1.21-4.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report.
groff-1.21-9.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.